CVE-2017-10784

Description

The Basic authentication code in WEBrick library in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows remote attackers to inject terminal emulator escape sequences into its log and possibly execute arbitrary commands via a crafted user name.

CVSS Metrics

• v3.0•HIGH•Score: 8.8CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
• v2.0•HIGH•Score: 9.3AV:N/AC:M/Au:N/C:C/I:C/A:C

EPSS Trends

Current EPSS score: 2.07%• Percentile: 84%

Techniques & Countermeasures

• CWE-287•Improper Authentication

  When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Affected Systems

• ruby-lang•ruby

  ≤ 2.2.7 | 2.3.0 | 2.3.0:preview1 | 2.3.0:preview2 | 2.3.1 | 2.3.2 | 2.3.3 | 2.3.4 | 2.4.0 | 2.4.0:preview1 | 2.4.0:preview2 | 2.4.0:preview3 | 2.4.0:rc1 | 2.4.1

References (15)

• https://usn.ubuntu.com/3685-1/
• https://access.redhat.com/errata/RHSA-2018:0585
• https://usn.ubuntu.com/3528-1/
• http://www.securityfocus.com/bid/100853
• https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-3-5-released/
• https://access.redhat.com/errata/RHSA-2018:0378
• http://www.securitytracker.com/id/1042004
• https://www.debian.org/security/2017/dsa-4031
• https://www.ruby-lang.org/en/news/2017/09/14/ruby-2-2-8-released/
• http://www.securitytracker.com/id/1039363
• https://access.redhat.com/errata/RHSA-2017:3485
• https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
• https://access.redhat.com/errata/RHSA-2018:0583
• https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/
• https://security.gentoo.org/glsa/201710-18